Identifier
Created
Classification
Origin
09STATE29527
2009-03-27 10:37:00
SECRET//NOFORN
Secretary of State
Cable title:
TEMPEST COUNTERMEASURES REQUIREMENTS - KOLKATA
how-toVZCZCXRO1998 RR RUEHCI DE RUEHC #9527/01 0861055 ZNY SSSSS ZZH R 271037Z MAR 09 FM SECSTATE WASHDC TO RUEHCI/AMCONSUL KOLKATA 3202 INFO RUEHBK/AMEMBASSY BANGKOK 9276 RUEHML/AMEMBASSY MANILA 0314 RUEHNE/AMEMBASSY NEW DELHI 3759 RUEHNW/DIR DTSPO WASHINGTON DC
S E C R E T SECTION 01 OF 02 STATE 029527
NOFORN
KOLKATA FOR RSO AND IMO
NEW DELHI FOR ESC AND RIMC
MANILA FOR RDSE (ACTING)
BANGKOK FOR RIMC
DTSPO FOR BRS/CMD/TCSC
SIPDIS
E.O. 12958: DECL: UPON CLOSURE OF U.S. CONSULATE KOLKATA
TAGS: AADP ABLD AMGT ACOA ASEC KSEO KRIM KGIT KNET KCIP
SUBJECT: TEMPEST COUNTERMEASURES REQUIREMENTS - KOLKATA
REF: 94 STATE 261557
Classified By: M.J. STEAKLEY, DS/ST/CMP, REASON: 1.4 (C) AND (G)
S E C R E T SECTION 01 OF 02 STATE 029527
NOFORN
KOLKATA FOR RSO AND IMO
NEW DELHI FOR ESC AND RIMC
MANILA FOR RDSE (ACTING)
BANGKOK FOR RIMC
DTSPO FOR BRS/CMD/TCSC
SIPDIS
E.O. 12958: DECL: UPON CLOSURE OF U.S. CONSULATE KOLKATA
TAGS: AADP ABLD AMGT ACOA ASEC KSEO KRIM KGIT KNET KCIP
SUBJECT: TEMPEST COUNTERMEASURES REQUIREMENTS - KOLKATA
REF: 94 STATE 261557
Classified By: M.J. STEAKLEY, DS/ST/CMP, REASON: 1.4 (C) AND (G)
1. (S/NF) These revised TEMPEST countermeasures requirements
are effective immediately. Requirements apply to the
Chancery at Kolkata, located at 5/1 Ho Chi Minh Sarani,
Kolkata West Bengal, India. Kolkata,s relevant threat
levels at the time of this telegram are Medium for Technical
and Medium for Human Intelligence.
2. (S) TEMPEST requirements are determined by the Certified
TEMPEST Technical Authority (CTTA) and approved by the
Countermeasures Division Director. These requirements apply
to all information processing systems for this facility.
A. (S) TOP SECRET and Sensitive Compartmented Information
(SCI) CLASSIFIED Automated Information System (AIS): Post is
not currently authorized for processing classified national
security information (NSI) at the TOP SECRET or SCI level.
TEMPEST requirements will be provided for processing at this
level once authorized.
B. (S) SECRET (COLLATERAL) CLASSIFIED AIS: Post is authorized
to use TEMPEST Zone B or TEMPEST Level 2 AIS equipment for
processing classified NSI at the SECRET level within
restricted and core areas of the controlled access area
(CAA). Use of higher level equipment is approved. Post is
authorized to use commercial-off-the-shelf (COTS) AIS
equipment within a certified shielded enclosure (CSE) or
equivalent that meets NSA 94-106 specifications.
NOTE: Post currently has Zone B compliant equipment installed
for classified processing, and this equipment may continue to
be used for processing at the SECRET level until September,
2011. All new procurements must be for TEMPEST Level 2
compliant equipment. By October 2011, all classified
processing at Post must be on TEMPEST Level 2 equipment. Use
of higher level equipment is approved.
C. (S) SENSITIVE BUT UNCLASSIFIED (SBU) AIS: Use of COTS AIS
for processing SBU information within the restricted and core
area of the Embassy CAA is approved.
3. (S) Secret-High Video-teleconferencing and Data
Collaboration (SVDC),if requested, will be addressed in a
SEPTEL following completion of coordination with VCI/VO.
4. (S) All Classified Automated Information System (CAIS)
equipment, components and peripherals must be secured in
accordance with Overseas Security Policy Board (OSPB)
requirements for classified discussion, processing and/or
storage overseas. Thin clients with embedded flash memory,
at facilities with a 24-hour cleared American presence, are
permitted to remain unsecured within the CAA as long as the
equipment is rebooted prior to vacating the premises.
5. (S) Fiber optic cabling is required for classified
connectivity. Fiber optic cabling is also required for SBU
connectivity for any information technology equipment located
within a CSE. Equipment used to process classified
information outside a CSE must be installed, to the maximum
extent possible, in accordance with Recommendation E of
NSTISSAM TEMPEST 2-95 with the following additional
requirements:
- Be located a minimum of one meter (three feet spherical)
from other computer and electronic equipment used for
unclassified information processing.
- Be located a minimum of one meter (three feet spherical)
from telephones, modems, facsimile machines, and unshielded
telephone or signal lines that do not leave USG-controlled
property (for example, phone lines that go to the post phone
switch).
- Be located a minimum of two meters (six feet spherical)
STATE 00029527 002 OF 002
from telephones, modems, facsimile machines, and unshielded
telephone or signal lines that transit USG-controlled
property (for example, direct phone lines that do not go
through the post telephone switch, telephone switch lines
going out, any wire going to antennas on the roof, etc).
- Be located a minimum of 3 meters (ten feet spherical) from
active radio transmitters (two-way radios, high frequency
transceivers, satellite transceivers, cellular devices,
Wi-Fi devices, Bluetooth, etc.) and must not use the same AC
power circuit as active radio transmitters (to include cell
phone chargers).
- Be located a minimum of three meters (ten feet spherical)
from cable television antenna feeds and any Warren switch
with the switch on. This distance can be reduced to one
meter if the Warren switch is off when processing classified.
- Be located to have no physical contact with any other
office equipment or cabling.
6. (S) Classified conversations up to SECRET may be conducted
in the CAA offices or vaults in accordance with 12 FAH-6
H-312.10-4. Classified conversations above the SECRET level
are restricted to relevant core areas.
7. (U) All requirements apply to all agencies under Chief of
Mission authority and pertain to the Chancery building only.
Tenant agencies may employ additional TEMPEST countermeasures
within their respective offices.
8. (U) For further information or clarification regarding 12
FAH-6 H-540 Automated Information Systems Standards, please
contact DS/CS/ETPA. For other TEMPEST-related issues, please
contact the Department CTTA at DSCTTA@state.sgov.gov.
9. (U) In accordance with 12 FAH-6 H-533.2, Post must verify
that these TEMPEST countermeasures have been implemented;
DS/ST/CMP requests Post report so in an updated Technical
Security Assessment (TSA). All proposed change requests to a
CAA countermeasures environment must be sent to the
Department, identified for DS/ST/CMP action.
10. (U) This telegram should be retained by Post until
superseding requirements are received.
CLINTON
NOFORN
KOLKATA FOR RSO AND IMO
NEW DELHI FOR ESC AND RIMC
MANILA FOR RDSE (ACTING)
BANGKOK FOR RIMC
DTSPO FOR BRS/CMD/TCSC
SIPDIS
E.O. 12958: DECL: UPON CLOSURE OF U.S. CONSULATE KOLKATA
TAGS: AADP ABLD AMGT ACOA ASEC KSEO KRIM KGIT KNET KCIP
SUBJECT: TEMPEST COUNTERMEASURES REQUIREMENTS - KOLKATA
REF: 94 STATE 261557
Classified By: M.J. STEAKLEY, DS/ST/CMP, REASON: 1.4 (C) AND (G)
1. (S/NF) These revised TEMPEST countermeasures requirements
are effective immediately. Requirements apply to the
Chancery at Kolkata, located at 5/1 Ho Chi Minh Sarani,
Kolkata West Bengal, India. Kolkata,s relevant threat
levels at the time of this telegram are Medium for Technical
and Medium for Human Intelligence.
2. (S) TEMPEST requirements are determined by the Certified
TEMPEST Technical Authority (CTTA) and approved by the
Countermeasures Division Director. These requirements apply
to all information processing systems for this facility.
A. (S) TOP SECRET and Sensitive Compartmented Information
(SCI) CLASSIFIED Automated Information System (AIS): Post is
not currently authorized for processing classified national
security information (NSI) at the TOP SECRET or SCI level.
TEMPEST requirements will be provided for processing at this
level once authorized.
B. (S) SECRET (COLLATERAL) CLASSIFIED AIS: Post is authorized
to use TEMPEST Zone B or TEMPEST Level 2 AIS equipment for
processing classified NSI at the SECRET level within
restricted and core areas of the controlled access area
(CAA). Use of higher level equipment is approved. Post is
authorized to use commercial-off-the-shelf (COTS) AIS
equipment within a certified shielded enclosure (CSE) or
equivalent that meets NSA 94-106 specifications.
NOTE: Post currently has Zone B compliant equipment installed
for classified processing, and this equipment may continue to
be used for processing at the SECRET level until September,
2011. All new procurements must be for TEMPEST Level 2
compliant equipment. By October 2011, all classified
processing at Post must be on TEMPEST Level 2 equipment. Use
of higher level equipment is approved.
C. (S) SENSITIVE BUT UNCLASSIFIED (SBU) AIS: Use of COTS AIS
for processing SBU information within the restricted and core
area of the Embassy CAA is approved.
3. (S) Secret-High Video-teleconferencing and Data
Collaboration (SVDC),if requested, will be addressed in a
SEPTEL following completion of coordination with VCI/VO.
4. (S) All Classified Automated Information System (CAIS)
equipment, components and peripherals must be secured in
accordance with Overseas Security Policy Board (OSPB)
requirements for classified discussion, processing and/or
storage overseas. Thin clients with embedded flash memory,
at facilities with a 24-hour cleared American presence, are
permitted to remain unsecured within the CAA as long as the
equipment is rebooted prior to vacating the premises.
5. (S) Fiber optic cabling is required for classified
connectivity. Fiber optic cabling is also required for SBU
connectivity for any information technology equipment located
within a CSE. Equipment used to process classified
information outside a CSE must be installed, to the maximum
extent possible, in accordance with Recommendation E of
NSTISSAM TEMPEST 2-95 with the following additional
requirements:
- Be located a minimum of one meter (three feet spherical)
from other computer and electronic equipment used for
unclassified information processing.
- Be located a minimum of one meter (three feet spherical)
from telephones, modems, facsimile machines, and unshielded
telephone or signal lines that do not leave USG-controlled
property (for example, phone lines that go to the post phone
switch).
- Be located a minimum of two meters (six feet spherical)
STATE 00029527 002 OF 002
from telephones, modems, facsimile machines, and unshielded
telephone or signal lines that transit USG-controlled
property (for example, direct phone lines that do not go
through the post telephone switch, telephone switch lines
going out, any wire going to antennas on the roof, etc).
- Be located a minimum of 3 meters (ten feet spherical) from
active radio transmitters (two-way radios, high frequency
transceivers, satellite transceivers, cellular devices,
Wi-Fi devices, Bluetooth, etc.) and must not use the same AC
power circuit as active radio transmitters (to include cell
phone chargers).
- Be located a minimum of three meters (ten feet spherical)
from cable television antenna feeds and any Warren switch
with the switch on. This distance can be reduced to one
meter if the Warren switch is off when processing classified.
- Be located to have no physical contact with any other
office equipment or cabling.
6. (S) Classified conversations up to SECRET may be conducted
in the CAA offices or vaults in accordance with 12 FAH-6
H-312.10-4. Classified conversations above the SECRET level
are restricted to relevant core areas.
7. (U) All requirements apply to all agencies under Chief of
Mission authority and pertain to the Chancery building only.
Tenant agencies may employ additional TEMPEST countermeasures
within their respective offices.
8. (U) For further information or clarification regarding 12
FAH-6 H-540 Automated Information Systems Standards, please
contact DS/CS/ETPA. For other TEMPEST-related issues, please
contact the Department CTTA at DSCTTA@state.sgov.gov.
9. (U) In accordance with 12 FAH-6 H-533.2, Post must verify
that these TEMPEST countermeasures have been implemented;
DS/ST/CMP requests Post report so in an updated Technical
Security Assessment (TSA). All proposed change requests to a
CAA countermeasures environment must be sent to the
Department, identified for DS/ST/CMP action.
10. (U) This telegram should be retained by Post until
superseding requirements are received.
CLINTON